合格させるMicrosoft Certified: Information Protection Administrator Associate SC-400テスト問題集で[2023年03月20日] 更新された140問あります [Q59-Q82]

Share

合格させるMicrosoft Certified: Information Protection Administrator Associate SC-400テスト問題集で[2023年03月20日] 更新された140問あります

Microsoft SC-400実際の問題と100%カバー率でリアル試験問題

質問 59
You have a Microsoft SharePoint Online site named Site1 and a sensitivity label named Sensitivity1.
Sensitivity1 adds a watermark and a header to content.
You create a policy to automatically apply Sensitivity1 to emails in Microsoft Exchange Online and Site1.
How will Sensitivity1 mark matching emails and Site1 documents? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels?view=o365-worldwide

 

質問 60
You create a data loss prevention (DLP) policy that meets the following requirements:
Prevents guest users from accessing a sensitive document shared during a Microsoft Teams chat Prevents guest users from accessing a sensitive document stored in a Microsoft Teams channel Which location should you select for each requirement? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-microsoft-teams?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoftteams/sharepoint-onedrive-interact

 

質問 61
You need to recommend a solution that meets the compliance requirements for viewing DLP tooltip justifications.
What should you recommend?

  • A. Configure a Microsoft Power Automate workflow to route DLP notification emails to the compliance department.
  • B. Instruct the compliance department users to review the False positive and override report.
  • C. Configure an Azure logic app to route DLP notification emails to the compliance department.
  • D. Instruct the compliance department users to review the DLP incidents report.

正解: B

解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/view-the-dlp-reports?view=o365-worldwide
Topic 2, Contoso Case Study
Overview
Contoso, Ltd. is a consulting company that has a main office in Montreal and three branch offices in Seattle, Boston, and Johannesburg.
Microsoft 365 Environment
Contoso has a Microsoft 365 FS tenant I he tenant contains the administrative user accounts shown in the following table.

Users store data In the following locations:
* SharePoint sites
* OneDrive accounts
* Exchange email
* Exchange public folders
* Teams chats
* Teams channel messages
When users in the research department create documents, they must add a 10-dig>t project code to each document. Project codes that start with the digits 999 are confidential.
SharePoint Online Environment
Contoso has four Microsoft SharePoint Online sites named Site1. Site2. Site3. and Site4.
Site2 contains the files shown in the following table.

Two users named User1 and User2 are assigned roles for Site2 as shown in the following table.

Sile3 stores documents related to the company's projects. The documents are organized In a folder hierarchy based on the project.
Slte4 has the following two retention policies applied:
* Name: SitetKetentionPolicy1
* Locations to apply the policy: Site4
* Delete items older than:2 years
* Delete content based on: When items were created
* Name: Site4RetentionPolicy2
* Locations to apply the policy. Sile4
* Retain items for a specific period: 4 years
* Start the retention period based on: When items were created
* At the end of the retention period: Do nothing
Problem Statements
Management at Contoso is concerned about data leaks. On several occasions, confidential research departments were leaked.
Planned Changes
Contoso plans to create the following data loss prevention (DLP) policy:
* Name: DLPpolicy1
* Locations to apply the policy; Site2
* Conditions:
* Content contains any of these sensitive info types: SWIF F Code
* Instance count: 2 to any
* Actions: Restrict access to the content
Technical Requirements
Contoso must meet the following technical requirements:
* All administrative users must be able to review DLP reports.
* Whenever possible, the principle of least privilege must be used.
* For all users, all Microsoft 365 data must be retained for at least one year.
* Confidential documents must be detected and protected by using Microsoft 365.
* Site1 documents that include credit card numbers must be labeled automatically.
* All administrative users must be able to create Microsoft 365 sensitivity labels.
* After a project is complete, the documents in Site3 that relate to the project must be retained for 10 years

 

質問 62
You plan to create a custom trainable classifier based on an organizational form template.
You need to identity which role based access control (RBAC ) role is required to create the trainable classifier and where to classifier. The solution must use the principle of least privilege.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365-worldwide#prepare-for-a-custom-trainable-classifier

 

質問 63
You create a data loss prevention (DLP) policy. The Advanced DLP rules page is shown in the Rules exhibit.

The Review your settings page is shown in the review exhibit.

You need to review the potential impact of enabling the policy without applying the actions.
What should you do?

  • A. Edit the policy, and then select I'd like to test it out first.
  • B. Edit the policy, remove all the actions in DIP rule 1, and select I'd like to test it out first
  • C. the policy. remove all the actions in DLP rule 1, and select Yes, turn it on right away.
  • D. Edit the policy, remove the Restrict access to the content and Send incident report to Administrator actions, and then select Yes, turn it on right away.

正解: C

 

質問 64
You are implementing a data classification solution.
The research department at your company requires that documents containing programming code be labeled as Confidential. The department provides samples of the code from its document library. The solution must minimize administrative effort.
What should you do?

  • A. Create a custom classifier.
  • B. Create a sensitive info type that uses Exact Data Match (EDM).
  • C. Use the source code classifier.
  • D. Create a sensitive info type that uses a regular expression.

正解: C

解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-learn-about?view=o365-worldwide

 

質問 65
You enable archive mailboxes for all the users at your company.
The Default MRM Policy is shown in the MRM exhibit.

A Microsoft 365 retention label policy is shown in the Label Policy exhibit.

You need to identify the following:
* How many years until an email is archived?
* What should you modify to change the retention period for archiving?
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide#the-principles-of-r

 

質問 66
You need to meet the technical requirements for the Site1 documents.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

正解:

解説:

1 - Creare a sensitive info type.
2 - Create a sensitivity label.
3 - Create an auto-labeling policy.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-worldwide#how-to-configure-auto-labeling-policies-for-sharepoint-onedrive-and-exchange
Topic 1, Contoso
SharePoint Online Environment
Contoso has four Microsoft SharePoint Online sites named Site1. Site2. Site3. and Site4.
Site2 contains the files shown in the following table.

Two users named User1 and User2 are assigned roles for Site2 as shown in the following table.

Sile3 stores documents related to the company's projects. The documents are organized In a folder hierarchy based on the project.
Slte4 has the following two retention policies applied:
* Name: SitetKetentionPolicy1
* Locations to apply the policy: Site4
* Delete items older than:2 years
* Delete content based on: When items were created
* Name: Site4RetentionPolicy2
* Locations to apply the policy. Sile4
* Retain items for a specific period: 4 years
* Start the retention period based on: When items were created
* At the end of the retention period: Do nothing
Problem Statements
Management at Contoso is concerned about data leaks. On several occasions, confidential research departments were leaked.
Planned Changes
Contoso plans to create the following data loss prevention (DLP) policy:
* Name: DLPpolicy1
* Locations to apply the policy; Site2
* Conditions:
* Content contains any of these sensitive info types: SWIF F Code
* Instance count: 2 to any
* Actions: Restrict access to the content
Technical Requirements
Contoso must meet the following technical requirements:
* All administrative users must be able to review DLP reports.
* Whenever possible, the principle of least privilege must be used.
* For all users, all Microsoft 365 data must be retained for at least one year.
* Confidential documents must be detected and protected by using Microsoft 365.
* Site1 documents that include credit card numbers must be labeled automatically.
* All administrative users must be able to create Microsoft 365 sensitivity labels.
* After a project is complete, the documents in Site3 that relate to the project must be retained for 10 years

 

質問 67
You have a Microsoft SharePoint Online site that contains the following files.

Users are assigned roles for the site as shown in the following table.

Which files can User1 and User2 view? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Reference:
https://social.technet.microsoft.com/wiki/contents/articles/36527.implement-data-loss-prevention-dlp-in-sharepoint-online.aspx Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

 

質問 68
While creating a retention label, you discover that the following options are missing:
Mark items as a record
Mark items as a regulatory record
You need to ensure that the options are available when you create retention labels in the Microsoft 365 compliance center.
How should you complete the PowerShell script? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/declare-records?view=o365-worldwide
https://docs.microsoft.com/en-us/powershell/exchange/connect-to-scc-powershell?view=exchange-ps

 

質問 69
You need to recommend a solution that meets the sales requirements.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

正解:

解説:

1 - Upload sample contract documents to a seed content folder in SharePoint Online.
2 - Create a trainable classifier.
3 - Create an aut0-labeling policy for sensitivity labels.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365-worldwide

 

質問 70
Each product group at your company must show a distinct product logo in encrypted emails instead of the standard Microsoft Office 365 logo.
What should you do to create the branding templates?

  • A. Run the Set-IRMConfiguration cmdlet.
  • B. Create a Transport rule.
  • C. Run the New-OMEConfiguration cmdlet.
  • D. Create an RMS template.

正解: C

解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/add-your-organization-brand-to-encryptedmessages?view=o365-worldwide

 

質問 71
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You deploy the Endpoint DLP configuration package to the computers.
Does this meet the goal?

  • A. Yes
  • B. No

正解: A

 

質問 72
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.
You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.
You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.
Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add the application to the unallowed apps list.
Does this meet the goal?

  • A. Yes
  • B. No

正解: A

解説:
Explanation
Unallowed apps is a list of applications that you create which will not be allowed to access a DLP protected file.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-using?view=o365-worldwide

 

質問 73
You create a retention label policy named Contoso_policy that contains the following labels.
10 years then delete
5 years then delete
Do not retain
Contoso_Policy is applied to content In Microsoft Sharepoint Online sites.
After a couple of days, yon discover the following messages on the Properties page of the label policy.
* Statue Off (Error)
* It's taking longer than expected to deploy the policy
You need to reinitiate the policy.
How should you complete the command? To answer, select the appropriate options in the; answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

 

質問 74
Your company has a Microsoft 365 tenant that uses a domain named contoso.com.
You are implementing data loss prevention (DLP).
The company's default browser is Microsoft Edge.
During a recent audit, you discover that some users use Firefox and Google Chrome browsers to upload files labeled as Confidential to a third-party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint.com. Users are blocked from uploading the confidential files to the site from Microsoft Edge.
You need to ensure that the users cannot upload files labeled as Confidential from Firefox and Google Chrome to any cloud services.
Which two actions should you perform? Each correct answer presents part of the solution. (Choose two.)
NOTE: Each correct selection is worth one point.

  • A. From the Microsoft 365 compliance center, onboard the devices.
  • B. From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, add Firefox and Google
    Chrome to the unallowed browsers list.
  • C. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an
    allowed service domain.
  • D. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add
    m365x076709.sharepoint.com as a blocked service domain.
  • E. Create a DLP policy that applies to the Devices location.

正解: A,B

解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide

 

質問 75
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are configuring a file policy in Microsoft Cloud App Security.
You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department.
Solution: You use the Data Classification service inspection method and send alerts to Microsoft Power Automate.
Does this meet the goal?

  • A. Yes
  • B. No

正解: B

解説:
Explanation/Reference:
https://docs.microsoft.com/en-us/cloud-app-security/dcs-inspection
https://docs.microsoft.com/en-us/cloud-app-security/data-protection-policies

 

質問 76
You have a Microsoft 365 tenant that uses Microsoft Teams.
You create a data loss prevention (DLP) policy to prevent Microsoft Teams users from sharing sensitive information.
You need to identify which locations must be selected to meet the following requirements:
* Documents that contain sensitive information must not be shared inappropriately in Microsoft Teams.
* If a user attempts to share sensitive information during a Microsoft Teams chat session, the message must be deleted immediately.
Which three locations should you select? To answer, select the appropriate locations in the answer area.
(Choose three.)
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation
Graphical user interface, application Description automatically generated

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-microsoft-teams?view=o365-worldwide

 

質問 77
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender for Endpoint.
Does this meet the goal?

  • A. Yes
  • B. No

正解: A

解説:
Explanation/Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide

 

質問 78
You need to meet the retention requirement for the users' Microsoft 365 data.
What is the minimum number of retention policies that you should use?

  • A. 0
  • B. 1
  • C. 2
  • D. 3
  • E. 4

正解: C

解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide

 

質問 79
You plan to create a custom trainable classifier based on an organizational form template.
You need to identity which role based access control (RBAC ) role is required to create the trainable classifier and where to classifier. The solution must use the principle of least privilege.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

 

質問 80
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You deploy the Endpoint DLP configuration package to the computers.
Does this meet the goal?

  • A. Yes
  • B. No

正解: A

解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints?view=o365-
worldwide

 

質問 81
You have a Microsoft 365 E5 tenant that contains a sensitivity label named label1.
You plan to enable co-authoring for encrypted files.
You need to ensure that files that have label1 applied support co-authoring.
Which two settings should you modify? To answer, select the settings in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels-coauthoring?view=o365-worldwide
https://techcommunity.microsoft.com/t5/security-compliance-and-identity/co-authoring-files-with-sensitivity-labels/ba-p/3029768

 

質問 82
......

Microsoft SC-400リアル2023年最新のブレーン問題集で模擬試験問題集:https://jp.fast2test.com/SC-400-premium-file.html

SC-400無料試験問題と解答PDF更新されたのは2023年03月:https://drive.google.com/open?id=1bV-kTQy2qkcechHbeERgY4WeRxqWpA0M


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어